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CONFIDENTIAL INFORMATION SHARING SYSTEM 



5 FIELD OF THE INVENTION 

The present invention relates to infonnation systems generally, and more 
particularly to infonnation sharing systems. 

1 0 BACKGROUND OF THE INVENTION 

U.S. Patents 6,311,169 and 6,249,775 are believed to represent the 
current state of the art. 
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The present invention seeks to provide improved confidential 
information snaring systems. 

There is thus provided in accordance with a preferred embodiment of the 
present invention a confidential infonnation sharing system including a first plurality of 
dala collection units, each collecting confidential data regarding a second plurality of 
individual entities, a third plurality of data consumer units which intermittently require 
confidential data collected by ones of the first plurality of data collection units regarding 
ones of the second plurality of individual entities; and at least one confidential data 
sharing interface, responsive to a requirement from one of the third plurality of data 
consumer units for confidential data from one of the first plurality of data collection 
units regarding one of the second plurality of individual entities, to pull confidential 
data from an appropriate one of the first plurality of data collection units regarding a 
15 specific individual entity. 

There is also provided in accordance with another preferred embodiment 
of the present invention a confidential information sharing system including a first 
plurality of confidential data collection units, each collecting confidential infonnation 
regarding a second plurality of individual entities, a third plurality of confidential data 
consumer units which intermittently require confidential data collected by ones of the 
first plurality of confidential data collection units regarding ones of the second plurality 
of individual entities and at least one confidential data sharing interface, operative on 
line to provide confidential data to one of the third plurality of confidential data 
consumer units from one of the first plurality of confidential data collection units 
regarding one of the second plurality of individual entities regarding a specific 
individual entity. 

There is further provided in accordance with another preferred 
embodiment of the present invention a confidential information sharing system 
including a first plurality of confidential data collection units, each collecting 
confidential information regarding a second plurality of individual entities, a third 
plurality of confidential data consumer units which intermittendy require confidential 
data collected by ones of the first plurality of confidential data collection units regarding 
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ones of the second plurality of individual entities and at least one confidential data 
sharing interface, operative on line to provide confidential data from one of the first 
plurality of confidential data collection units regarding a specific individual entity. 

There is still further provided in accordance with another preferred 
embodiment of the present invention a confidential information sharing system 
including a first plurality of confidential data collection units, each collecting 
confidential information regarding a second plurality of individual entities, a third 
plurality of confidential data consumer units which intermittently require confidential 
data collected by ones of the first plurality of confidential data collection units regarding 
ones of the second plurality of individual entities and at least one confidential data 
sharing interface, operative on line to provide confidential data from one of the first 
plurality of confidential data collection units regarding one of the second plurality of 
individual entities. 

There is yet further provided in accordance with another preferred 
embodiment of the present invention a commercial system mcluding a first plurality of 
credit confidential data collection units, each collecting confidential credit information 
regarding a second plurality of individual entities and at least one credit confidential 
data receiver, receiving credit confidential data from ones of the first plurality of 
confidential data collection units regarding ones of the second plurality of individual 
entities and for directing offers to the ones of the second plurality of individual entities 
based on said credit confidential data specific to each of said ones of the second 
plurality of individual entities. 

There is also provided in accordance with yet another preferred 
embodiment of the present invention a loan securitizing system including a first 
plurality of confidential data collection units, each collecting confidential information 
regarding a second plurality of loans to individual entities and at least one loan 
securitizing system receiving on line information from the first plurality of confidential 
data collection units and being operative to provide consolidated information regarding 
at least one collection of loans within the second pluralities of loans and being 
operative, based on the consolidated information to enable enhanced ease of securitizing 
the at least one collection of loans. 

There is further provided in accordance with still another preferred 
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There is still further provided in accordance ™th yet another preferred 
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the individual entity confidential data tracing functionality enables individual ones of 
the second plurality of individual entities to determine the origin of the confidential data 
relating to themselves. 

In accordance with a preferred embodiment of the current invention the 
5 individual entity annotation input functionality enables individual ones of the first 
plurality of data collection units to view the annotations. Additionally, the individual 
entity annotation input functionality may also enable individual ones of the first 
plurality of data collection units to view the annotations together with the related 
confidential data. Additionally or alternatively, the individual entity annotation input 
1 0 functionality may enable individual ones of the first plurality of data collection units to 
respond to the annotations. 

In accordance with yet another preferred embodiment of the current 
invention the individual entity annotation input functionality enables individual ones of 
the second plurality of individual entities to interact with the first plurality of data 
1 5 collection units in relation to the annotations. 

In accordance with still another preferred embodiment of the current 
invention the individual entity annotation input functionality enables individual ones of 
the second plurality of individual entities to store information relating to themselves, 
which information may be made available together with the confidential data. 
20 In accordance with a preferred embodiment of the current invention the 

system is implemented on a distributed network. Additionally, the distributed network 
may comprise remote databases as well as segmented databases. Alternatively, the 
distributed network may comprise multiple databases resident on a single computer. 

25 
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The present invention will be understood and appreciated more fully 
fiom the following detailed description, taken in conjunction with the drawings in 
which: 

Fig. 1 is a simplified pictorial illustration showing various functionalities 
forming part of a confidential information sharing system and method constructed and 
operative in accordance with a preferred embodiment of the present invention; 

Figs. 2A and 2B are simplified flow charts showing the operation of a 
data collection unit interface constructed and operative in accordance with a preferred 
embodiment of the present invention; 

Fig. 3 is a simplified flow chart showing the operation of a confidential 
information sharing system and method, including privacy functionality, constructed 
and operative in accordance with a preferred embodiment of the present invention; 

Fig. 4 is a simplified flow chart showing the operation of a payment 
functionality that forms part of a confidential information sharing system and method 
constructed and operative in accordance with a preferred embodiment of the present 
invention; 

Fig. 5 is a simplified flow chart showing the operation of a profiling 
functionality that forms part of a confidential information sharing system and method 
constructed and operative in accordance with a preferred embodiment of the present 
invention; and 

Figs. 6A and 6B are simplified flow charts showing the operation of an 
advertising functionality that forms part of a confidential information sharing system 
and method constructed and operative in accordance with a preferred embodiment of the 
present invention. 



WO 2004/006045 PCT/IL2003/000562 

9 

DETAILED DESCRIPTION OF PREFERRED EMBODIMENTS 

Reference is now made to Fig. 1, which is a simplified pictorial 
illustration showing various functionalities forming part of a confidential information 
sharing system and method constructed and operative in accordance with a preferred 
embodiment of the present invention. As seen in Fig. 1, a plurality of confidential data 
collection units 100, such as banks, credit card companies, and other data collectors, 
collect confidential data relating to individual entities, such as consumers and 
businesses. The confidential data, typically credit rating related confidential data, may 
include bank loan transaction records, utility payment records, credit card payment 
records or any other suitable data In accordance with a preferred embodiment of the 
present invention, a plurality of data collection unit interfaces 102 are operative to 
collect and store the data received from the data collection units 100. 

The data collection unit interfaces 102 may include data collection nodes 
104, typically dedicated to a single data collection unit 100, or data collection racks 105, 
typically shared among multiple data collection units 100. The data collection racks 105 
may aggregate data from one or more data collection nodes 104, or may include data 
collection controllers controlling a multiplicity of other suitable data collectors. 

The confidential information sharing system also includes a data sharing 
interface 106, through which a plurality of confidential data consumer units 108 are able 
to request confidential data The data sharing interface 106 communicates with the data 
collection unit interfaces 102, as described in reference to Fig. 3 hereinbelow, to retrieve 
the relevant confidential data stored therein. The data sharing interface 106 may be 
embodied in a conventional system or as a software agent. The data collection unit 
interfaces 102 may include conventional data storage and retrieval devices, which may 
be co-located with the data collection unit 100 data facility or the data sharing interface 
106, or may be embodied as a software functionality incorporated into the data sharing 
interface 106. 

As seen in Fig. 1, the plurality of confidential data consumer units 108 
typically comprises individual entities 110, such as consumers or small business 
entities, typically requesting data relating to their own credit rating, and other data 
consumers 112, such as loan underwriters or credit granting entities, typically 
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requesting data relating to a specific individual entity 1 10. 

Thus, as seen in Fig. 1, an individual consumer 110 may access the 
confidential information sharing system through the data sharing interface 1Q6 to 
request their personal credit information. The data sharing interface 106 then 
communicates with the plurality of data collection unit interfaces 102, as described 
hereinbelow in reference to Fig. 3, to generate a response to the personal credit 
information request. 

In another preferred embodiment seen in Fig. 1, a loan underwriter 1 12 
may access the confidential information sharing system through the data sharing 
interface 106 to request credit information concerning an individual loan applicant. The 
data sharing interface 106 then communicates with the plurality of data collection unit 
interfaces 102, as described hereinbelow in reference to Fig. 3, to generate the requested 
credit information. 

In accordance with still another preferred embodiment of the present 
invention, the data sharing interface 106 may collect and store data from the individual 
entities 110, typically annotations relating to specific entries in their own confidential 
data, as well as from the data collection units 100, typically responses to the data 
consumer unit annotations. The annotations and responses may be linked to the specific 
confidential data entries to which they relate, which may allow for the annotations to 
then be accessed together with the entries. In a further embodiment, the data sharing 
interface 106 may also facilitate interaction between an individual entity 110 and an 
individual data collection unit 100 in relation to the above annotations and responses. 

The data structure which supports the flow of data described in Fig. 1 
may be implemented via conventional data networking technology, such as the internet 
or other conventional data networking systems. Alternatively, the data structure may be 
embodied using a distributed network, which may include remote databases, segmented 
databases and/or multiple databases resident on a single computer. In accordance with 
another preferred embodiment, the confidential information sharing system may be 
accessed on-line. In yet another embodiment, the data sharing interface 106 may be a 
software agent enabling peer-to-peer interaction between the data consumer unit 108 
and the data collection unit interfaces 102. 

It is appreciated, that, in accordance with the preferred embodiments of 
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the present invention, the data collection unit interfaces 102 control the data which 
flows from the data collection units 100 to the data sharing interface 106 and that access 
to the data collection unit interfaces 102 is controlled by the data sharing interface 106, 
which transmits the data consumer unit data requests to the data collection unit 
interfaces 102. The data sharing interface 106 may also aggregate the data and/or 
perform other suitable operations on the data to appropriately respond to the data 
consumer data requests. 

In another preferred embodiment, the data sharing interface 106 may also 
communicate with additional functionality managers, such as a payment manager, as 
described hereinbelow in reference to Fig. 4, a profiling manager, as described 
hereinbelow in reference to Fig. 5, or an advertising manager, as described hereinbelow 
in reference to Figs. 6A and 6B. Alternatively, these functionalities may be incorporated 
into the data sharing interface 106. 

Reference is now made to Fig. 2A, which is a simplified flow chart 
15 showing the operation of a data collection functionality of a data collection unit 
interface 102 constructed and operative in accordance with a preferred embodiment of 
the present invention. It is appreciated that the content and the format of the data to be 
provided, from the data collection unit 100, to the data collection unit interfece 102, for 
access by the data sharing interface 106, as well as the frequency of its provision, have 
20 been agreed upon prior to the operation of the data collection functionality. It is also 
appreciated that the frequency of the operation of the data collection functionality is, 
preferably, a function of the volume of data generated by the data collection unit and 
may vary from data collection unit to data collection unit. It is further appreciated that 
the content and format of the data being provided may vary from data collection unit to 
25 data collection unit 

As seen in Fig. 2 A, in block 200, the data collection unit 100 generates a 
data extract according to the agreed upon specifications. The data extract is then 
transmitted, as shown in block 202, to the data collection unit interface 102. The data 
collection unit interface 102 then verifies the accuracy of the data, in block 204, using 
30 conventional verification techniques, and prepares the data for storage, typically 
including compression and encryption of the data, as seen in block 206. 

Preferably, the data collection unit interface 102 then creates a log 
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record, typically including appropriate data extract tracking information, recording the 
receipt of the extract, and saves the log record together with data extract, as shown in 
block 208. Additionally, as indicated in block 210, the data collection unit interface 102 
preferably creates a back-up copy of the log record and the data extract to provide for 
5 recovery in the event of a system emergency. 

All of the above referenced functions may be performed employing 
conventional systems and methodologies. 

Reference is now made to Fig. 2B, which is a simplified flow chart 
showing the operation of a data query response function of a data collection unit 
10 interface 102 constructed and operative in accordance with a preferred embodiment of 
the present invention. In block 220, the data sharing interface 106 receives a data query 
pertaining to a specific individual entity 110 from an authorized data consumer unit 108. 
The data sharing interface 106 then generates a data collection unit query which is 
transmitted in block 222 to the data collection unit interface 102. In block 224, foe data 
15 collection unit interface 102 verifies foe identity of the data sharing interface 106 
making foe request 

In block 226, the data collection unit interface 102 searches for data 

records pertaining to foe individual entity 1 10 requested. If no records are found in the 

search, foe process continues in block 228, where foe data collection unit interface 102 
20 generates an 'entity not found' response. Control then proceeds to block 230, where foe 

data collection unit interface 102 transmits foe 'entity not found' response to the data 

sharing interface 106 and creates a log record of foe transmission of the query response. 

If records are found in foe search in block 226, foe process continues in 

block 232, where foe data collection unit interface 102 retrieves foe relevant data. The 
25 data is then compressed and encrypted in block 234. In block 230, foe data collection 

unit interface 102 transmits foe query response to foe data sharing interface 106 and 

creates a log record of foe transmission of the query response. 

All of foe above referenced functions may be performed employing 

conventional systems. Additionally, foe data collection unit interfaces 102 preferably 
30 include 'firewall' and/or other appropriate security protection to ensure that the data 

collection unit confidential data is accessed only by authorized users, requesting data 

through the data sharing interface 106. 
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Reference is now made to Fig. 3, which is a simplified flow chart 
showing the operation of a confidential information sharing system, including privacy 
functionality, constructed and operative in accordance with a preferred embodiment of 
the present invention. In block 300, a confidential data consumer unit 108, such as a 
5 loan underwriter 112 or other credit granting agency 112, requests confidential data 
relative to a specific individual entity 110 from the data sharing interface 106, after 
receiving authorization from the individual entity 110. Preferably, the individual entity 
authorization includes a machine readable identification, such as a driver's license, 
which is also transmitted to the data sharing interface 106. In addition, the confidential 

10 data consumer unit 108 also transmits identification information, preferably, by 
providing a machine readable identification, to the data sharing interface 106 along with 
the data request to be processed. 

In block 302, the data sharing interface 106 receives the request and 
verifies the authenticity of the data consumer unit 108, as well as the authenticity of the 

15 individual entity 110 whose confidential data is being requested. The data sharing 
interface 106 generates a unique query number in block 304 and, in block 306, creates a 
log record of the request including date and time stamp, the data consumer unit 108, the 
individual entity 110 whose confidential data is being requested, and the unique query 
number generated in block 304. In block 308, the data sharing interface 106 

20 communicates the request to the data collection unit interfaces 102. In block 310, the 
data collection unit interfaces 102 process the query as described in Fig. 2B 
hereinabove. In block 312, the data sharing interface 106 performs the required 
operations, such as aggregation and data manipulation, based on the responses from the 
data collection unit interfaces 102, to generate the data consumer unit response. 

25 ^ another preferred embodiment of the present invention, the 

confidential data consumer unit 108, referenced above in block 300, is an authorized 
individual entity 110 requesting confidential information relative to itself, where the 
authorization may also include a conventional identification recognition methodology, 
such as user name and password recognition, and/or biometric identification. 

30 Reference is now made to Fig. 4, which is a simplified flow chart of a 

payment function, which forms part of a confidential information sharing system 
constructed and operative in accordance with a preferred embodiment of the present 
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invention. In this embodiment, the data sharing interface 106 communicates with a 
payment manager, which is operative to debit accounts of the confidential data 
consumers 108 and credit accounts of the confidential data collection units 100 5 based 
on the data supplied in response to queries. Alternatively, the functionality of the 
payment manager may be incorporated into the data sharing interface 106. 

As described hereinabove in Fig. 3, a confidential data consumer unit 
108 requests confidential data relative to a specific individual entity 110. In block 400, 
the data sharing interface 106 processes a request by receiving responses from the data 
collection unit interfaces 102. Each data collection unit 100, in the plurality of data 
collection units, either provides data relative to the specific individual entity 110 or 
responds with an 'entity not found 1 response. In block 402, the data sharing interface 106 
is operative to create a transaction record for each data collection unit 100 that provides 
data in response to the query. These transaction records are then transmitted, in block 
404, to the payment manager, which, in block 406, creates the debit and credit entries in 
the accounts of the data consumer unit 108 and the data collection unit 100, 
respectively. The balances in these accounts may be settled by any appropriate method, 
such as through cash payment or barter arrangement, based on agreement with the 
confidential information sharing system provider. 

In accordance with another preferred embodiment of the present 
invention, the payment manager may be operative to debit and credit the data consumer 
unit 108 and the individual entity 110, respectively, for access to the data, or to process 
any other authorized payments. 

Additionally, the payment manager may also transmit information 
relative to payment accounts, such as account balances, to the data collection units 100 
or the data consumer units 108 through the data sharing interface 106. 

Reference is now made to Fig. 5, which is a simplified flow chart of a 
profiling function, which forms part of a confidential information sharing system 
constructed and operative in accordance with a preferred embodiment of the present 
invention. In this embodiment, the data sharing interface 106 communicates with a 
profiling manager, which utilizes at least one of a multiplicity of profiling agents to 
generate profile based information targeted to the individual entities 110 relative to 
themselves, based on the data supplied in response to individual entity specific queries. 
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Alternatively, the functionality of the profiling manager may be incorporated into the 
data sharing interface 106. 

As described hereinabove in Fig. 3 $ a confidential data consumer unit 
108 requests confidential data relative to a specific individual entity 110. In this 
instance, the data consumer unit 108 is the individual entity 1 10, requesting data relative 
to itself, in block 500. In block 502, the data sharing interface 106 processes the request 
by receiving responses from the data collection unit interfaces 102. The data sharing 
interface 106 then transmits the data to the profiling manager, in block 504. In block 
506, the profiling manager processes the data, preferably using an expert/decision 
system or other suitable method, to generate an individual entity profile. In block 508, 
the individual entity profile is then transmitted to the data sharing interface 106, which 
then utilizes the individual entity profile to generate content specific to the individual 
entity 110 based on its confidential data. This individual entity specific content may be 
provided to the individual entity 110 by the data sharing interface 106 in the form of on- 
line links to information that might be of specific interest to the individual entity 1 10, 
where the individual entity 110 would preferably remain anonymous until those links 
were activated. 

Reference is now made to Fig. 6A, which is a simplified flow chart of an 
embodiment of an advertising function, which forms part of a confidential information 
sharing system constructed and operative in accordance with another preferred 
embodiment of the present invention. In this embodiment, the data sharing interface 106 
communicates with an advertising manager, which utilizes at least one of a multiplicity 
of advertising agents to generate advertising targeted to specific individual entities 1 10, 
based on the data supplied in response to individual entity specific queries. 
Alternatively, the functionality of the advertising manager may be incorporated into the 
data sharing interface 106. 

As described hereinabove in Fig. 3, a confidential data consumer unit 
108 requests confidential data relative to a specific individual entity 110. In this 
instance, the data consumer unit 108 is the individual entity 1 10, requesting data relative 
to itself in block 600. In block 602, the data sharing interface 106 processes the request 
by receiving responses from the data collection unit interfaces 102. The data sharing 
interface 106 then transmits the individual entity data to the advertising manager, in 
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block 604. In block 606, the advertising manager processes the data using an 
expert/decision system or other suitable method to generate individual entity specific 
advertising, such as product and/or service offers based on prior purchasing trends. 

In another embodiment of the present invention, the advertising manager 
communicates with the profile manager, described hereinabove in reference to Fig. 5, to 
generate an individual entity profile prior to generating the individual entity specific 
advertising. Alternatively, the functionality of the advertising manager and the profiling 
manager may be incorporated into one advertising and profiling manager, which may be 
incorporated into the data sharing interface 1 06. 

In block 608, the individual entity specific advertising is then transmitted 
to the data sharing interface 106, which then transmits the individual entity specific 
advertising to the individual entity 110. This individual entity specific advertising may 
be provided to the individual entity 1 10 by the data sharing interface 106 in the form of 
on-line links to specific offers from advertisers that might be of interest to the individual 
1 5 entity 1 1 0 or in any other suitable format 

Reference is now made to Fig. 6B, which is a simplified flow chart of 
another embodiment of an advertising function, forming part of a confidential 
information sharing system. In this embodiment, the data sharing interface 106 
communicates with an advertising manager, which utilizes at least one of a multiplicity 
of advertising agents to generate advertising targeted to confidential data consumer 
units 108 relative to a specific individual entity 110, with the permission of the 
individual entity 1 10, based on the data supplied in response to individual entity specific 
queries. Alternatively, the functionality of the advertising manager may be incorporated 
into the data sharing interface 106. 

As described hereinabove in Fig. 3, a confidential data consumer unit 
108 requests confidential data relative to a specific individual entity 110, with the 
permission of specific individual entity 1 10, in block 620. In block 622, the data sharing 
interface 106 processes a request by receiving responses from the data collection unit 
interfaces 102. The data sharing interface 106 then transmits the individual entity data to 
the advertising manager, in block 624, with a request for data consumer unit advertising 
relative to specific individual entity 110. In block 626, the advertising manager 
processes the data using an expert/decision system or other suitable method to generate 
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advertising targeted to the data consumer unit 108 relative to specific individual entity 
110, such as product and/or service offers they could provide to the specific individual 
entity based on their prior purchasing trends or credit history. 

In another embodiment of the present invention, the advertising manag er 
communicates with the profile manager, described hereinabove in reference to Fig. 5, to 
generate an individual entity profile prior to generating the data consumer unit 
advertising. Alternatively, the functionality of the advertising manager and the profiling 
manager may be incorporated into one advertising and profiling manager, which may be 
incorporated into the data sharing interface 106. 

In block 628, the data consumer unit advertising is then transmitted to 
the data sharing interface 106, which then transmits the data consumer unit advertising 
to the data consumer unit 108. This data consumer unit specific advertising may be 
provided in the form of on-line links to specific offers that the data consumer unit 108 
might offer to the individual entity 1 10 or in any other suitable format. 

In accordance with another preferred embodiment, the advertising 
manager would communicate with the payment manager, which would then process 
payments from advertisers for each advertisement generated. 

It will be appreciated by persons skilled in the art that the present 
invention is not limited by what has been particularly shown and described hereinabove. 
Rather the scope of the present invention includes both combinations and 
subcombinations of the various features described hereinabove as well as variations and 
modifications which would occur to persons skilled in the art upon reading the 
specification and which are not in the prior art. 



